[youtube]http://youtu.be/C6md792nMhY[/youtube]
Yesterday I told you that a simple iPhone terminal loader can be used to infect your device with malware, and today I will tell you that a different accessory can be used to remove the iOS restrictions menu security code. In the Settings> General> Restrictions you can impose various restrictions in iOS, and the settings can be protected with a security code. If you enter that security code incorrectly 3 times, the iOS virtual keyboard will be automatically blocked for 5 minutes.
Then I decided to test on another section of iOS: the restrictions, allowing for example to block the App Store, camera, etc. .. And there I found a security flaw: when you hit several times a wrong code, the virtual keyboard is locked for 1 minutes, 5 minutes, 15 minutes and 60 minutes after each bad try. But if ever a physical keyboard is used, it is always possible to try a code. It works with my Teensy 3.0 that emulates a USB keyboard, but also with a conventional keyboard or even a Bluetooth keyboard.
If instead you connect to a tablet iPad a Teensy 3.0 logic board that emulates a keyboard, then you can enter any codes you want until you find the right one. In the video clip above we have a demonstration of a brute force attack, it works only on iPad tablets and can be done with any type of keyboard connected to the iPad tablet using the Camera Connection Kit. On iPhone terminals this is impossible because keyboards cannot be connected, but on iPad tablets you have to be careful.
